When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Some victims were identified, but not named in the report, for obvious security reasons.
The miscreants were then selling the archives in a dedicated Telegram channel, earning hundreds of euros per breach.
Good, since they will probably need the money for legal counsel, once theyre arrested and tried.
This may assist in further actions against the perpetrators.
Rotem and Loncar reported their findings, first to the Israeli Cyber Directorate, and later to AWS Security.
Cybersecurity pros are constantly warning about cloud misconfigurations being one of the key reasons for breaches.
Ultimately, the researchers reported AWS, completed handling this issue on November 9.
All services are operating as expected.
“AWS provides capabilities which remove the need to ever store these credentials in source code.
Customers still sometimes inadvertently expose credentials in public code repositories.
